Description
The authentication mechanism to use will be SASL DIGEST-MD5 (see RFC-2222 and RFC-2831) or SASL GSSAPI/Kerberos. Since J2SE 5, Sun provides a SASL implementation by default. Both our delegation token and job token can be used as credentials for SASL DIGEST-MD5 authentication.
Attachments
Attachments
Issue Links
- blocks
-
HDFS-933 Add createIdentifier() implementation to DelegationTokenSecretManager
- Closed
- is depended upon by
-
MAPREDUCE-1335 Add SASL DIGEST-MD5 authentication to TaskUmbilicalProtocol
- Closed
- is related to
-
HADOOP-4487 Security features for Hadoop
- Closed
-
GIRAPH-168 Simplify munge directive usage with new munge flag HADOOP_SECURE (rather than HADOOP_FACEBOOK) and remove usage of HADOOP
- Resolved
-
GIRAPH-211 Add secure authentication to Netty IPC
- Resolved
- relates to
-
HADOOP-6572 RPC responses may be out-of-order with respect to SASL
- Closed
-
HADOOP-6589 Better error messages for RPC clients when authentication fails
- Closed